General Information

The GBA is used to enable the authentication of a mobile user (UE) when the user has a valid identity on a HLR or HSS.

Both GBA ME and GBA Digest are supported by PureLoad.

The user authentication is instantiated by a shared secret on the SIM card and the other on the HLR/HSS. This shared secret is limited in time and for a specific domain. The UE use a bootstrapping procedure based on HTTP Digest AKA to authenticate to the Bootstrapping Server Function (BSF). The BSF establishes a shared secret between the SIM card and the service provider. The UE also communicates with the Network Application Functions (NAF) which are the application servers. The UE can reside in a IMS, VoLTE, or other mobile network.

Examples

The following examples do not intend to show all actions that can be done with the GBA Tasks. The pictures are screenshots from examples available with the GBA download package.

Ub Bootstrapping procedure

This is a simple scenario demonstrating Ub bootstrapping procedure, extracting B-TID, calculating Ks NAF and authenticate with NAF and then calling NAF using interface Zn.